7259 matches found
55 bytes SLoc-DoS shellcode by Magnefikko
No description provided by source. include stdio.h include string.h / by Magnefikko 14.04.2010 [email protected] Promhyl Studies :: http://promhyl.oz.pl Subgroup: PRekambr Name: 55 bytes SLoc-DoS shellcode Platform: Linux x86 unlink/etc/shadow; execvepoweroff, 0, 0; gcc -Wl,-z,execstack...
Linux - setuid(0) & execve("/sbin/poweroff -f")
No description provided by source. include stdio.h / linux/x86 ; setuid0 & execve/sbin/poweroff -f 47 bytes written by ka0x - ka0x01alt+64gmail.com lun sep 21 16:40:16 CEST 2009 greets: an0de, Piker, xarnuz, NullWave07, Pepelux, JosS, sch3m4, Trancek, Hendrix and others! / int main char shellcode...
UFO: Alien Invasion 2.2.1 - BoF Exploit (Win7 ASLR and DEP Bypass)
No description provided by source. !/usr/bin/python Exploit Title: UFO: Alien Invasion v2.2.1 BoF Exploit Win7 ASLR and DEP Bypass Date: July 5, 2010 Author: Node Software Link: http://sourceforge.net/projects/ufoai/files/UFOAI%202.x/2.2.1/ufoai-2.2.1-win32.exe/download Version: UFO: Alien Invasi...
ISDN4Linux 3.1 IPPPD Device String SysLog Format String Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/5437/info isdn4linux is a freely available, open source package of isdn compatibility tools. It is available for Linux operating systems. isdn4linux contains a format string vulnerability in the ipppd utility. In some...
OpenDcHub 0.8.1 - Remote Code Execution Exploit
No description provided by source. !/usr/bin/python OpenDcHub 0.8.1 Remote Code Execution Exploit Pierre Nogues - http://www.indahax.com Description: OpenDcHub is a direct connect hub for Linux OpenDcHub doesn't handle specially crafted MyINFO message which lead to a stack overflow. Affected...
execve of /bin/sh after setreuid(0,0)
No description provided by source. / $Id: execve-setreuid.c,v 1.1 2001/05/02 18:10:52 raptor Exp $ execve-setreuid.c v1.0 - shellcode for Linux/i386 Copyright c 2001 Raptor [email protected] This shellcode does an execve of /bin/sh after a setreuid0, 0, then exits. / / ASM Code ; setreuid0...
LCDProc 0.4 - Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1131/info A vulnerability exists in the server portion of version 0.4 of the LCDProc package. Several remote buffer overflows exist that could allow a remote attacker to corrupt memory and execute arbitrary code. As liste...
MailEnable Pro/Ent <= 3.13 (Fetch) post-auth Remote BOF Exploit
No description provided by source. !/usr/bin/perl ================================================================= MailEnable Professional = 3.13 FETCH post-auth buffer overflow ================================================================= Bind Shell POC Exploit for Win2K SP4 pro English Fou...
Microsoft Windows XP/2000/NT 4 ntdll.dll Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/7116/info The Windows library ntdll.dll includes a function that does not perform sufficient bounds checking. The vulnerability is present in the function RtlDosPathNameToNtPathNameU and may be exploited through other...
Xion Audio Player 1.0.127 - (m3u) Buffer Overflow Vulnerability
No description provided by source. Exploit Title: Xion Audio Player 1.0.127 m3u Buffer Overflow Vulnerability Date: 11/23/2010 Author: 0v3r Software Link: http://www.r2.com.au/downloads/files/xionv1.0b127.exe Version: 1.0.127 Tested on: Windows XP SP3 EN CVE: N/A !/usr/bin/python encoded with...
Jasc Paint Shop Pro 8 - Local Buffer Overflow Exploit (UNIVERSAL)
No description provided by source. / Software: Jasc Paint Shop Pro v8 Local Buffer Overflow Exploit UNIVERSAL Bug type: Local buffer overflow Exploitation method: SEH handler overwrite Description: When a crafted .PNG file is oppened a stack buffer overflow occurs because of DEP a SEH handler is...
linux/x86 upload & exec 189 bytes
No description provided by source. UPLOAD & EXEC SHELLCODE 1 converting asm to hex 2 asm code 3 hex output 4 upload function This is an 'upload and exec' shellcode for the x86 platform. File has to be in executable format, cool if you know the distribution of the target, otherwise it is useless...
CoolPlayer Portable 2.19.1 - (m3u) Buffer Overflow Exploit (2)
No description provided by source. !/usr/bin/python Usage : coolplayer.py Bug : CoolPlayer Portablem3u Buffer Overflow exploit Founder : Goldm First exploiter : stack he is my friend : Tested on : Xp sp2 fr Greetings : All friends & muslims HaCkErs DZ,snakespc.com,secdz.com Note: I didn't know wh...
KnFTP Server Buffer Overflow Exploit
No description provided by source. !/usr/bin/python tested on windows xp sp3 overwrites EIP seh is overwritten with larger payloads knftpd.exe is the only non safeseh module import sys,socket print \n===================== print KnFTP Buffer Overflow print Written by Blake print...
QK SMTP <= 3.01 (RCPT TO) Remote Buffer Overflow Exploit (pl)
No description provided by source. !/bin/perl http://www.securityfocus.com/bid/20681 tested on winXp Pro SP0 English/winXp Pro SP2 Italian/win 2k SP4 Italian/English return address is universal bind a remote cmd.exe on target host on 4444 port; based on expanders original exploit credit to Greg...
ASX to MP3 Converter 3.0.0.100 - Local stack overflow exploit
No description provided by source. !/usr/bin/python import time ASX to MP3 Converter Version 3.0.0.100 = Local stack overflow exploit Author: Hazem Mofeed PoC: http://www.exploit-db.com/exploits/11930 Tested On: Windows Xp Home Edition SP3 Home: http://hakxer.wordpress.com print ' Exploited by...
Linux x86 - ip6tables -F - 47 bytes
No description provided by source. / Linux x86 - ip6tables -F - 47 bytes Jonathan Salwan submit ! shell-storm.org ! DataBase of Shellcodes and you can share your shellcodes : http://www.shell-storm.org/shellcode/ ! The Gnuser Project Gnu Users Manager = http://www.gnuser.org Disassembly of sectio...
BigAnt Server 2.2 - PreAuth Remote SEH Overflow Exploit (0day)
No description provided by source. !/usr/bin/python BigAnt Server Ver 2.2 PreAuth Remote SEH Overflow 0day Matteo Memelli aka ryujin www.be4mind.com - www.gray-world.net 04/13/2008 Tested on Windows 2000 Sp4 English Vulnerable process is AntServer.exe Offset for SEH overwrite is 954 Bytes...
HP-UX 11 Software Distributor Lang Environment Variable Local Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8986/info HP has reported that some Software Distributor SD utilities are prone to a locally exploitable buffer-overrun vulnerability. Affected utilities include swinstall1M and swverify1M. / Program : xhpux11isw.c Use :...
Microsoft SQL Server 7.0/2000,Data Engine 1.0/2000 xp_showcolv Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2038/info The API Srvparaminfo, which is implemented by Extended Stored Procedures XPs in Microsoft SQL Server and Data Engine, is susceptible to a buffer overflow vulnerability which may cause the application to fail or...